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(57) ABSTRACT 

The copy protection system and method combines the 
features of a conventional electronic data carrier with a 
dongle to form a secure storage medium. The storage 
medium has a unique identification, such as a device serial 
number. The host transmits a challenge signal to the storage 
medium and then checks the response received from the 
storage medium for a proper correlation between the useful 
data and the storage medium. A mismatch indicates that the 
data is present on a bootleg carrier instead of on its autho- 
rized carrier. Therefore, if the response signal in the 
challenge-response process does not correspond to the 
expected setpoint response, then the data are not authorized 
for processing. 

9 Claims, 1 Drawing Sheet 



Device Public Key 



5"~f 



Device Private Key 



Authentication 
Module 




Challenge-Response 



Protocol 



Data 



Host Public Key 



Host Private Key 



Authentication 
Module 



Host 



Storage Medium 



02/06/2004, EAST Version: 1.4.1 



U.S. Patent 



Aug. 27, 2002 



US 6,442,626 Bl 



Device Public Key 



Device Private Key 



Authentification 
Module 




Challenge-Response 



Protocol 



Data 



Host Public Key 



Host Private Key 



Authentification 
Module 



Host 



Storage Medium 



FIG. 1 



i- Public Key K 0 



Private Key 




Public 
Key K 0 



Software 



Storage Medium 



i> Response 



3 — 



Challenge *\- 



Plain Copy 



Public Key 



Private Key 




OK? 



Software 



Host 



FIG. 2 



02/06/2004, EAST Version: 1.4.1 



US 6,4< 

1 

COPY PROTECTION SYSTEM ONLY 
AUTHORIZES THE USE OF DATA IF 
PROPER CORRELATION EXISTS BETWEEN 
THE STORAGE MEDIUM AND THE USEFUL 
DATA 

BACKGROUND OF THE INVENTION 

Field of the Invention 

The invention relates to software piracy prevention. More 
specifically, the invention pertains to a novel method of 
protecting digital data against unauthorized copying and use. 

Digital media have become popular carriers for various 
types of data information. Computer software and audio 
information, for instance, are widely available on optical 
compact disks (CDs). Recently, the digital audio tape (DAT) 
has gained in distribution share. The CD and the DAT utilize 
a common standard for the digital recording of data, 
software, images, and audio. Additional media, such as 
multimedia compact disks (MCD), digital video disks 
(DVD), super density disks, and the like, arc making con- 
siderable gains in the software and data distribution market. 

The substantially superior quality of the digital format as 
compared to the analog format renders the former much 
more prone to unauthorized copying and pirating. Copying 
of a digital data stream — whether compressed, 
uncompressed, encrypted or non-encrypted — typically does 
not lead to any appreciable loss of quality in the data. Digital 
copying thus is essentially unlimited in terms of multi- 
generation copying. Analog data with its substantial signal 
to noise ratio, on the other hand, is naturally limited in terms 
of multi-generation and mass copying. 

The advent of the recent popularity in the digital format 
has also brought about a slew of copy protection systems and 
methods. These are generally grouped in categories such as 
encryption, copy protection, and content extensions. 

Prior art methods of preventing unauthorized copying of 
copyrighted and protection-worthy data do not attain a 
particularly high degree of protection. 

Encryption, which is used in the digital and the analog 
format, essentially scrambles the information. The data 
stream can be made usable only with the proper key. It has 
been found that encryption is usually easy to crack. Once the 
key has been found by a copy pirate, the information may be 
freely multiplied without encryption. 

Software copy protection was widely used during the 
early days of the personal computer. However, software 
manufacturers essentially stopped copy protection once it 
was found that, on the one hand, virtually all copy protection 
codes would be quickly broken by hackers and, on the other 
hand, the development of new types of copy protection was 
becoming prohibitively expensive. Furthermore, non- 
protected programs soon turned out to become so widely 
used — even though many copies were unauthorized — that 
the additional sales could largely make up for the bootleg 
losses. 

One hybrid solution is partly software and partly hard- 
ware based. In such systems, the identification features of 
the storage media are used, in order to determine their 
existence in the system. If that feature is also present in the 
data to be protected, then it is assumed on the basis of the 
binder connection between the data and the storage medium, 
that the data have been read from or used by just that 
medium. An example is a copy protection system in which 
the identification number of compact flash cards are used 
(company Liquid Audio). That protection is easily cracked 
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in so far as the feature ID of the memory card can be easily 
manipulated in the system. 

An established hardware -based protection system uses a 
special hardware circuit (e.g. at the parallel port of a PC) for 

5 processing an authentication between the data and the 
circuit. The relevant data can be used only in the presence of 
that hardware module. Such a hardware module for copy 
protection is often referred to as a dongle. That solution has 
several disadvantages. On the one band, the module must be 

io usable on all platforms on which the memory card is to be 
used. This is very difficult and hardly possible in heteroge- 
neous user environments (e.g. PC, PDA, low-cost audio 
player, etc.). The target system, furthermore, must include a 
corresponding interface. In PCs this is typically the printer 

15 interface. Such an interface, however, is not typically 
present in low -cost applications (e.g. portable tape players 
and disc players). 

On the other hand, the data can be copied and used 
without any problem when the hardware module is corre- 

20 spondingly manipulated. It is also understood that copy 
protection and the prevention of pirating in general is not 
typically in the consumer's interest. 

Several popular programs use a system in which an 
installation key is delivered with the original program pack- 

25 aging of the data carrier (e.g. CD or floppy). The installation 
key is required before the program data can be installed on 
a PC. It is thereby easily possible to copy the key together 
with the data content of the CD any number of times and to 
thus distribute and bring into circulation any number of 

30 pirated copies. 

Another established protection mechanism comprises pre- 
venting copying in general with the aid of special protocol 
conventions. Such protocols have been established, for 
instance, in the audio application of DAT recorders. As noted 

35 above, CD and DAT data formats are substantially identical 
and, accordingly, multi-generation copying would be pos- 
sible. In the DAT system, therefore, the CD to be copied is 
queried for special copy protection information and, if the 
protection is activated, the DAT recorder is not authorized 

40 for copying. Such a method, however, is disadvantageous in 
that a high degree of discipline with regard to the target 
devices is necessary. Special anti-copy circuitry must be 
included in the recorder. Such a system is known as the serial 
copy management system (SCMS). The end user is not 

*5 generally interested in those measures. It has been shown 
that the discipline is not always maintained. In particular, 
black boxes for filtering the copy -prohibit instruction from 
the digital signal are widely available. Recently, also, the use 
of modern PCs makes it possible to easily manipulate such 

50 mechanisms and, in the end, to circumvent them. 

SUMMARY OF THE INVENTION 

It is accordingly an object of the invention to provide a 
copy protection method and system, which overcomes the 

55 above-mentioned disadvantages of the heretofore-known 
devices and methods of this general type and which safely 
protects against copying of protected data from one medium 
onto an equivalent storage medium and the identical use of 
the copied data as the data on the original storage medium. 

60 It is a particular object to prevent the reading-out of infor- 
mation while retaining existing protection mechanisms and 
the subsequent copying of the deciphered data. Finally, it is 
a specific object of the novel method to bind the data to be 
protected with the carrier medium and to render free dupti- 

65 cation of the data onto other carrier media impossible. 

With the foregoing and other objects in view there is 
provided, in accordance with the invention, a method of 
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preventing unauthorized copying of data by authorizing data 
and a storage medium. The method comprises the following 
steps: 

providing a storage medium with useful data and a unique 
identification; 5 

transmitting a challenge signal from a host to the storage 
medium; 

generating a response signal in the storage medium and 
transmitting the response signal to the host; and 1Q 

determining whether a proper correlation exists between 
the storage medium and the useful data, and authoriz- 
ing the data for use in the host if the proper correlation 
exists. 

In accordance with an added feature of the invention, a 15 
random number is generated and incorporated in the chal- 
lenge signal. 

In accordance with another feature of the invention, the 
useful data comprise a software program and the host is a 
software processor, and the method further comprises copy- 20 
ing a plain copy of the software program from the storage 
medium to the host prior to the transmitting step. 

In accordance with a further feature of the invention, a 
further challenge signal is transmitted from the storage 
medium to the host, a response to the further challenge 25 
signal is generated in the host, the response is transmitted to 
the storage medium, and the response is authorized in the 
storage medium if the response corresponds to a setpoint 
response. 

With the above and other objects in view there is also 30 
provided, in accordance with the invention, a copy protec- 
tion system, comprising: 

a storage medium containing useful data and having a 

unique identification; 
a host adapted to receive from the storage medium a 35 
transmission with the useful data, the host being pro- 
grammed to: 

generate and transmit a challenge signal to the storage 
medium; 

process a response signal received from the storage 40 
medium; and 

determine whether a proper correlation exists between 
the storage medium and the useful data, and autho- 
rize the data for use in the host if the proper corre- 
lation exists. 45 

In accordance with again a further feature of the 
invention, the storage medium is a multimedia card and the 
host is a computer. 

In accordance with a concomitant feature of the invention, 
the host includes a random number generator and a random 50 
number generated in the host is included in the challenge 
signal. In addition, or in the alternative, the storage medium 
includes a random number generator. 

Other features which are considered as characteristic for 
the invention are set forth in the appended claims. 55 

Although the invention is illustrated and described herein 
as embodied in a copy protection system and method, it is 
nevertheless not intended to be limited to the details shown, 
since various modifications and structural changes may be 
made therein without departing from the spirit of the inven- 60 
lion and within the scope and range of equivalents of the 
claims. 

The construction and method of operation of the 
invention, however, together with additional objects and 
advantages thereof will be best understood from the follow- 65 
ing description of specific embodiments when read in con- 
nection with the accompanying drawings. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a schematic showing data flow between a storage 
medium and a host; and 

FIG. 2 is a schematic block diagram of a software-based 
exemplary embodiment of the invention. 

DESCRIPTION OF THE PREFERRED 
EMBODIMENTS 

Referring now to the figures of the drawing in detail and 
first, particularly, to FIG. 1 thereof, there is seen a system 
diagram where a storage medium 1 contains useful data 2. 
The useful data 2 is the data to be protected from pirating. 
The storage medium 1 may, for instance, be a multimedia 
card or a smart card. A host 3 receives the data from the 
storage medium 1 and processes the data according to the 
pertinent instructions. 

The invention, in general terms, resides in the authoriza- 
tion of the useful data with the aid of the storage medium 1 
on which the data 2 are stored. The data are thereby present 
in such a form that they contain information about the 
storage medium 1. It is a prerequisite that the storage 
medium 1 is individually identified. 

When the data are read and used, the host 3 transmits a 
challenge signal to the storage medium 1 and then checks on 
the basis of the response whether there exists a correlation 
between the storage medium 1 and the data 2. It is thereby 
possible to use any conventional challenge- response 
method. One possibility is to use a public key process in 
which the storage medium 1 — also referred to as a device — 
possesses a unique public key 4. The host 3 dynamically 
generates a random number and transmits the random num- 
ber to the storage medium 1 together with the host's public 
key. In response, the storage medium 1 thereupon generates 
from that number a definitive answer and transmits the 
answer to the host 3. 

Both the generation of the random number and the check 
may be performed with a module that is provided on the host 
with the aid of the data to be used, or with the data itself (in 
the form of a executable program). 

Depending on the desired safety level, it is also possible 
to employ more complicated challenge -response processes 
as they are known from the pertinent literature (in which, for 
instance, both the storage medium and the host generate 
random numbers). Reference is. had, in this regard to our 
commonly assigned, copending application Ser. No. 09/167, 
273, which is herewith incorporated by reference. 

If the response received by the host 3 does not correspond 
to the setpoint response (the "correct" response), the host 
may decline to use the data (e.g. the processing of the 
program may be aborted). 

Checking the identification feature of the medium may for 
instance be a part of the software that is stored on the 
medium 1 itself. Copying the content of the medium is thus 
useless since the data cannot be used unless the correspond- 
ing storage medium 1 is physically present in the host 3. This 
process therefore allows close coupling of the usability of 
the software with the associated electronic data storage 
medium, which contains the matching dongle hardware. 

The invention thus resides in the combination of a con- 
ventional electronic storage medium or data carrier (e.g. 
multimedia card) with a security controller (dongle) in a 
novel, secure storage medium. The inventive concept further 
lies in the use of an authentification process in checking for 
the use -authorization of the data 2 that are present on the 
storage medium 1. The storage medium 1 thereby possesses 
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an aulhentification module 5 with the aid of which the 
authentication can be processed. The combination of the 
two characteristics in one device reduces the system costs 
(only ooe interface is required) on the ooe hand, and it 
simultaneously increases the protection against the unautho- 
rized use of the useful data 2 that are to be protected. 

Referring now to FIG. 2, there is shown a specific 
embodiment in which the concept of the invention is uti- 
lized. The program transmits random numbers to the storage 
medium 1 and then compares its response with the setpoint 
response. The program is first copied from the storage 
medium into the host in unmodified form. In order to 
improve security, it is also possible to use two-sided 
challenge-response processes. 

We claim: 

1. A method of authorizing data and a storage medium, 
which comprises: 

providing a storage medium with useful data and a unique 
identification, the useful data being present in such a 
form that the useful data contain information about the 
storage medium; 

transmitting a challenge signal from a host to the storage 
medium; 

generating a response signal in the storage medium and 
transmitting the response signal to tbe host; and 

determining whether a proper correlation exists between 
the storage medium and the useful data, and authoriz- 
ing the data for use in the host if the proper correlation 
exists. 

2. The method according to claim 1, which further com- 
prises generating a random number and incorporating the 
random number in the challenge signal. 

3. The method according to claim 1, wherein the useful 
data comprise a software program and the host is a software 
processor, and wherein the method comprises copying a 
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plain copy of the software program from the storage medium 
to the host prior to the transmitting step. 

4. The method according to claim 1, which further com- 
prises transmitting a further challenge signal from the stor- 
age medium to the host, generating a response to the further 
challenge signal in the host, transmitting the response to the 
storage medium, and authorizing the response in the storage 
medium if the response corresponds to a setpoint response. 

5. The method according to claim 1, wherein the storage 
medium is a multimedia card and the host is a computer. 

6. A copy protection system, comprising: 
a storage medium containing useful data and having a 

unique identification, the useful data being present in 
such a form that the useful data contain information 
about the storage medium; 
a host adapted to receive from said storage medium a 
transmission with the - useful data, said host being 
programmed to: 

generate and transmit a challenge signal to said storage 
medium; 

process a response signal received from said storage 
medium; and 

determine whether a proper correlation exists between 
said storage medium and the useful data, and autho- 
rize the data for use in the host if the proper corre- 
lation exists. 

7. The system according to claim 6, wherein said storage 
medium is a multimedia card. 

8. Tbe system according to claim 6, wherein said host 
includes a random number generator and a random number 
generated in said host is included in said challenge signal. 

9. The system according to claim 6, wherein said storage 
medium includes a random number generator. 
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